UCEAS.net
Unsolicited Commercial Email Analysis System
Anti-Spam Tools Mailing Lists
just starting, low volume
|
|
| Purpose |
- Gather spam from various users and deposit into central repository
- Analyze the origin of the spam
- Follow due process to notify the spammer of their illegal/unwanted activity
- Provide anti-spam tools to help lawyers, ISPs and users fight spam
- Each domain can operate their own independent spam collection/analysis or combine data w/ other collection sites
|
| Process |
- I'd like to see a secure copy of the server at "an officer of the court" physical offices
- This machine is to be under lock-n-key until court discovery date
- Make nightly/regular copies of new spams onto cdrom
- Compare spam collected against other "collection sites"
- Have lawyers on retainer to act as needed for their area of licensed law practice
- When the attorneys feel they have a case, they should puruse legal remedies in a class action suit
|
| Users Action Items |
- Users should have done everything reasonable to prevent incoming spam
- Users should NEVER ever reply to incoming spam .. not even to get out of their spam list
- Download and install our AntiSpam.Collector.pl script to submit your unwanted spam for analysis
- They use it to report the spam they received to us w/ its full headers
- AFTER you have finished reading all your incoming emails, anything left over is presumed to be spam
- Please include all of the hidden headers along with the spam itself
( use the submit.spam.sh script )
- use SpamCollectorTest@UCEAS.net for testing how it all works
- Later, we will automatically generate your custom antispam filters to implement on your mailserver
- Other, more active ways for you to report your spam to the authorities
|
| AntiSpamCollector Action Items |
- Provide a GPL'd set of AntiSpam collection and analysis Scripts
- submit.spam.sh will submit your spam to SpamCollector@UCEAS.net
- AFTER you have finished reading all your incoming emails, anything left over is presumed to be spam
- Please include all of the hidden headers along with the spam itself
( use the submit.spam.sh script )
- use SpamCollectorTest@UCEAS.net for testing how it all works
- AntiSpam.Collector.pl will analyze all incoming spam reported by our script
- Users submit their spam to our spam repository
- AntiSpam.Analyzer.pl will analyze all incoming spam
- Analyze the time and date stamps
- Analyze the original user sending the spam
- Analyze the original sending machine
- Report the abuse to the respective ISP which sent the spam
- Mirror the reported spam to a secondary/tertiary server
- Our AntiSpam database to be used like an RBL for open relays and spammers
- list of spammer ip# and domains
- list of spammer email adresses
- Generate a daily analysis/survey of the top-10 spammers ( machines and users )
|
| Contributors Action Items |
- Mirror the spam database and the antispam scripts
- Write code to generate various reports
- Help users in your area to install "anti-spam" process/proceedure for a (recoverable ??) fee
- they recover those fees as damages from the spammer ?
- Must know how to enable anti-spam features of sendmail, exim, qmail, postfix, etc
- Collect existing and pending cases - write commentaries
|
| Lawyer's Action Items |
- Know the states anti-spam laws, junk-fax laws, free-speech issues
- Understand the basics of computers and internet ( web and email )
- Knows how to fight the common defense strategy of the spammers
- free speech
- recepient asked for it ( not true )
- logs/emails are faked/modified
- Upfront retainer based, or hourly fees or "contignency" fee based legal counsel
- Assist, provide guidance those wanting to go the "small claims" method
- Fondness for class-action suits and legal process
- Proceeds paid to legal fees
- Proceeds paid to contributors
- Proceeds paid to spam recepients
|
| To Dos |
- server ------- I have servers sitting and waiting to go online
- Define database/file hierarchy to enable writing of scripts
- each incoming spam saved to its own file YYMMDD/time and compress it
- scripts ------ need to be written
- collector ------- get all the info from users PC if needed
- analyzer ------- where it came from
- first Received: line is your server
- Last Received: line is the culprit spam sending server
- Check and verify From:, Return-Path:, Reply-To:
- Check for foreign lanuguages used
- Check for spamware version used
- reporter ------- send out letters to the ISP, agencies and spammer
- survey generator - create nice graphs, top-10 spammers
- updater -------- users download the lastest db to their PC
- legal process -- need lawyers feedback/input
|